Cybersecurity Verification and Validation Testing in Automotive
Creators
- 1. ISCN GesmbH Entwicklung, Graz, Austria
- 2. TU Graz, Graz, Austria
- 3. Real Security, Maribor, Slovenia
Description
The new generations of cars have a number of ECUs (Electronic Control Units) which are connected to a central gateway and need to pass cybersecurity integration tests to fulfil the homologation requirements of cars. Cars usually have a gateway server (few have additional domain servers) with Linux and a large number of ECUs which are real time control of actuators (ESP, EPS, ABS, etc. – usually they are multicore embedded controllers) connected by a real time automotive specific bus (CAN-FD) to the domain controller or gateway server. The norms (SAE J3061, ISO 21434) require cybersecurity related verification and validation. Fir the verification car manufacturers use a network test suite which runs > 2000 test cases and which have to be passed for homologation. These norms have impact on the way how car communication infrastructure is tested, and which cybersecurity attack patterns are checked before a road release of an ECU/car.
This paper describes typical verification and validation approaches in modern vehicles and how such test cases are derived and developed.
Files
jucs_article_71833.pdf
Files
(2.5 MB)
| Name | Size | Download all |
|---|---|---|
|
md5:a7f3a8090dc969b170cfc5844b29d3ae
|
2.5 MB | Preview Download |
System files
(6.6 kB)
| Name | Size | Download all |
|---|---|---|
|
md5:c11732b240e8ad6a615778de06f58638
|
6.6 kB | Download |